Описание
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 1.0rc3+svn20090426-1ubuntu1 |
| edgy | ignored | end of life, was needs-triage |
| feisty | ignored | end of life, was needs-triage |
| gutsy | ignored | end of life, was needs-triage |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | ignored | end of life |
| karmic | ignored | end of life |
| lucid | not-affected | 1.0rc3+svn20090426-1ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | ignored | end of life, was needed |
| hardy | released | 0.8.6.release.e+x264svn20071224+faad2.6.1-0ubuntu3.1 |
| intrepid | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| jaunty | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| karmic | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
| lucid | released | 0.8.6.release.e+zdebian-2.3ubuntu1 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 1.1.1+ubuntu2-7.9 |
| devel | not-affected | 1.1.11.1-1ubuntu1 |
| edgy | ignored | end of life, was needed |
| feisty | released | 1.1.4-2ubuntu3.1 |
| gutsy | released | 1.1.7-1ubuntu1.3 |
| hardy | not-affected | 1.1.11.1-1ubuntu1 |
| intrepid | not-affected | 1.1.11.1-1ubuntu1 |
| jaunty | not-affected | 1.1.11.1-1ubuntu1 |
| karmic | not-affected | 1.1.11.1-1ubuntu1 |
| lucid | not-affected | 1.1.11.1-1ubuntu1 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
Array index error in the sdpplin_parse function in input/libreal/sdppl ...
Array index error in the sdpplin_parse function in input/libreal/sdpplin.c in xine-lib 1.1.10.1 allows remote RTSP servers to execute arbitrary code via a large streamid SDP parameter.
Уязвимость функции sdpplin_parse (input/libreal/sdpplin.c) библиотеки Xine-lib, позволяющая нарушителю выполнить произвольный код
EPSS
6.8 Medium
CVSS2